This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json) Hash identifier: Y1TTEwHPQ0yAn1wGLWvkFFTvJ5kQZA/KP9UNjHZnToU= Subject key identifier: 90:E3:F1:6B:F6:4C:91:A3:77:98:FF:8A:CC:58:E7:AF:75:3A:D5:E5 Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd Certificate serial: 019BF7637BE535C436B25736CEF2BE921B13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft Manifest number: 16E8 Signing time: Sun 25 Jan 2026 23:00:50 +0000 Manifest this update: Sun 25 Jan 2026 23:00:50 +0000 Manifest next update: Mon 26 Jan 2026 23:00:50 +0000 Files and hashes: 1: 1nMpDLYuPfBQOmpt5pYO3-mYgaM.roa (hash: qFQcqHmma1oo39YlL2XWPJ/NbS5gxpG0P6PjvZW9cyM=) 2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: qQyOr4PQgvmwyZKzmWlQF7/AhihsM511fx+A8HNuIFM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:7b:e5:35:c4:36:b2:57:36:ce:f2:be:92:1b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd Validity Not Before: Jan 25 23:00:50 2026 GMT Not After : Jan 26 23:00:50 2026 GMT Subject: CN=90e3f16bf64c91a37798ff8acc58e7af753ad5e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5b:3b:c1:cc:dd:ac:e4:59:a2:b6:44:81:92: 75:bf:cd:fb:e5:1c:d1:7a:44:98:08:51:3f:3c:c3: eb:e8:e9:44:7b:32:48:6b:fb:8c:bf:b5:af:c7:c5: e3:b3:7a:ad:d7:f8:eb:77:3f:c0:9d:56:30:ea:f6: 4a:b8:14:65:05:f4:c7:5a:ab:ac:76:35:e4:4c:9a: 3e:79:67:f5:fb:7b:de:f3:9d:d8:39:0e:58:38:4e: e2:c2:ec:42:59:e8:be:ad:fd:df:91:4f:49:e1:c0: c0:c3:af:4b:24:4d:5c:93:c4:c0:28:af:28:a3:aa: 20:3b:37:41:da:2b:f5:26:c2:e0:dc:b3:71:1d:a5: 71:f7:8a:59:b9:19:96:4a:cc:ee:37:1c:7e:f5:81: 46:b4:ca:21:9d:bb:bf:c5:47:59:a5:80:4b:d1:22: b6:fa:9c:93:44:27:aa:3a:9b:b5:05:94:c7:b3:9b: 82:6c:6c:54:52:5a:1e:37:70:97:e2:84:ae:27:e2: 8d:d0:0b:88:84:b9:88:6a:43:2b:79:16:97:6d:49: 75:52:a9:89:ae:91:d8:c9:26:d8:67:d6:49:9d:28: 95:3c:57:3d:59:75:4c:31:29:28:63:19:4f:09:84: 21:6a:60:63:d5:05:25:ae:f6:c5:fc:5f:5f:a6:6c: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E3:F1:6B:F6:4C:91:A3:77:98:FF:8A:CC:58:E7:AF:75:3A:D5:E5 X509v3 Authority Key Identifier: keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:ea:2f:d0:ab:da:58:4d:67:b6:87:f3:ad:aa:8a:b6:62:06: 35:8e:0d:23:bb:17:77:4a:d1:9c:08:85:e3:25:8d:08:5f:ee: a8:9a:cb:93:a1:bf:63:9b:c3:25:4c:0a:42:ac:3a:47:c1:e2: d1:5a:06:e2:a4:fa:fb:19:5a:40:4a:62:46:e7:4e:12:31:fc: c0:0e:a7:0e:50:71:32:42:f9:4f:f2:61:92:16:7d:6b:bc:48: be:5b:02:38:f5:64:bd:e5:ac:99:2b:d5:84:94:34:0d:fc:4d: 54:cc:1a:60:ba:46:7e:6d:e5:2b:0d:c3:1e:1d:35:a2:bb:b9: 17:57:cb:72:29:b9:ea:69:da:75:be:74:18:3c:c6:47:4f:b6: e7:fe:f6:e0:f2:c1:47:0b:6b:11:69:23:72:89:25:1e:4b:5d: 6c:ad:9f:d2:87:61:71:ed:e5:cf:5f:5c:99:74:72:1d:ff:d9: 89:71:f9:ce:c4:eb:b0:77:23:fb:bf:6d:6c:b2:5a:a7:c1:f9: e0:75:00:66:21:a4:76:fa:31:81:85:49:df:4a:5a:09:a8:8f: ca:07:ae:4b:3d:45:b1:7b:21:9f:77:b0:29:b0:10:18:c3:ef: 96:28:e7:13:85:42:ca:c9:f6:7d:92:07:70:72:d1:4b:14:20: ae:72:a7:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y3vlNcQ2slc2zvK+khsTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNTFiNDBiMzMxOThhYzVhMWVkZjUwZmZmMDg2MjgxNjAz MzVkZmQwHhcNMjYwMTI1MjMwMDUwWhcNMjYwMTI2MjMwMDUwWjAzMTEwLwYDVQQD Eyg5MGUzZjE2YmY2NGM5MWEzNzc5OGZmOGFjYzU4ZTdhZjc1M2FkNWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVs7wczdrORZorZEgZJ1v8375RzR ekSYCFE/PMPr6OlEezJIa/uMv7Wvx8Xjs3qt1/jrdz/AnVYw6vZKuBRlBfTHWqus djXkTJo+eWf1+3ve853YOQ5YOE7iwuxCWei+rf3fkU9J4cDAw69LJE1ck8TAKK8o o6ogOzdB2iv1JsLg3LNxHaVx94pZuRmWSszuNxx+9YFGtMohnbu/xUdZpYBL0SK2 +pyTRCeqOpu1BZTHs5uCbGxUUloeN3CX4oSuJ+KN0AuIhLmIakMreRaXbUl1UqmJ rpHYySbYZ9ZJnSiVPFc9WXVMMSkoYxlPCYQhamBj1QUlrvbF/F9fpmysrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJDj8Wv2TJGjd5j/isxY5691OtXlMB8GA1UdIwQY MBaAFFJRtAszGYrFoe31D/8IYoFgM139MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lY2E4MDktZDk0Mi00ZDg5LWI0Mzgt YTFjMjk5OTJiZmJlLzEvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9lY2E4MDktZDk0Mi00ZDg5LWI0MzgtYTFjMjk5OTJiZmJl LzEvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFOov0Kva WE1ntofzraqKtmIGNY4NI7sXd0rRnAiF4yWNCF/uqJrLk6G/Y5vDJUwKQqw6R8Hi 0VoG4qT6+xlaQEpiRudOEjH8wA6nDlBxMkL5T/JhkhZ9a7xIvlsCOPVkveWsmSvV hJQ0DfxNVMwaYLpGfm3lKw3DHh01oru5F1fLcim56mnadb50GDzGR0+25/724PLB RwtrEWkjcoklHktdbK2f0odhce3lz19cmXRyHf/ZiXH5zsTrsHcj+79tbLJap8H5 4HUAZiGkdvoxgYVJ30paCaiPygeuSz1FsXshn3ewKbAQGMPvlijnE4VCysn2fZIH cHLRSxQgrnKnBw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:31:59 2026 by rpki-client